{"result": {"cve": [{"id": "CVE-2002-1453", "type": "cve", "title": "CVE-2002-1453", "description": "Cross-site scripting (XSS) vulnerability in MyWebServer 1.0.2 allows remote attackers to insert script and HTML via a long request followed by the malicious script, which is echoed back to the user in an error message.", "published": "2002-08-14T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-1453", "cvelist": ["CVE-2002-1453"], "lastseen": "2017-04-18T15:49:51"}], "osvdb": [{"id": "OSVDB:6659", "type": "osvdb", "title": "MyWebServer Long URL Error Page XSS", "description": "## Vulnerability Description\nMyWebServer contains a flaw that allows a remote cross site scripting attack.\nThis flaw exists because the application does not validate user-supplied input. This could allow a user to create an overly long URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, once the link is clicked and a MyWebServer error page is displayed leading to a loss of integrity.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nMyWebServer contains a flaw that allows a remote cross site scripting attack.\nThis flaw exists because the application does not validate user-supplied input. This could allow a user to create an overly long URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, once the link is clicked and a MyWebServer error page is displayed leading to a loss of integrity.\n## Manual Testing Notes\nhttp://[victim]/[223b_of_any_data]<font%20size=50>DEFACED<!--//--\n## References:\nVendor URL: http://www.mywebserver.org/us/\nMail List Post: http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0077.html\nISS X-Force ID: 9861\n[CVE-2002-1453](https://vulners.com/cve/CVE-2002-1453)\nBugtraq ID: 5470\n", "published": "2002-08-14T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:6659", "cvelist": ["CVE-2002-1453"], "lastseen": "2017-04-28T13:20:01"}], "exploitdb": [{"id": "EDB-ID:21710", "type": "exploitdb", "title": "MyWebServer 1.0.2 Long HTTP Request HTML Injection Vulnerability", "description": "MyWebServer 1.0.2 Long HTTP Request HTML Injection Vulnerability. CVE-2002-1453. Remote exploit for windows platform", "published": "2002-08-14T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://www.exploit-db.com/exploits/21710/", "cvelist": ["CVE-2002-1453"], "lastseen": "2016-02-02T17:05:53"}]}}